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AMENDMENTS TO THE CLAIMS 

1 . (currently amended) A method for secure mutual authentication comprising the steps of: 
authenticating a customer at a first web site; 

receiving a selection from said customer at said first web site requiring transfer to a second 
web site; 

generating an authentication message for said customer at said first web site, said 
authentication message devoid of intelligent information of said custome r and comprising a 
permanent customer pseudonym that uniquelv identifies said customer and is devoid of intellieent 
information of said customer : and 

transferring said authentication message from said first web site to said second web site for 
authentication of said customer by said second web site. 

2. (canceled). 

3. (currently amended) The method of claim 2\, wherein the step of generating an 
authentication message further comprises randomly generating said customer pseudonym. 

4. (currently amended) The method of claim 21, wherein the step of generating an 
authentication message fiirther comprises incorporating a date/time stamp, a partner name and an 
optional uniform resource locator (URL) with a retum address for said first web site into said 
authentication message. 

5. (original) The method of claim 1, wherein the step of generating an authentication 
message comprises incorporating a source identifier, a date/time stamp, an optional retum URL, a 
customer pseudonym, a cryptographic key, a transaction identification and authenticated data for the 
first web site into said authentication message. 
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6. (original) The method of claim 5, wherein said authenticated data comprises said 
date/time stamp, said optional retum URL, said customer pseudonym, said transaction 
identification, and a partner name. 

7. (original) The method of claim 1, further comprising the step of authenticating said 
customer at said second web site using said authentication message generated by said first web site. 

8. (original) A computer for performing the method of claim 1 . 

9. (original) A computer-readable medium having software for performing the method 
of claim 1. 



10. (currently amended) A method for secure mutual authentication comprising the steps 

of: 

receiving at a second web site an authentication message for a customer from a first web 
site, said customer previously authenticated by said first web site, said authentication message 
generated by said first web site, said authentication message devoid of intelligent information of 
said customer and comprising a permanent customer pseudonym that uniquely identifies said 

customer and is devoid of intelligent information of said customer : and 

authenticating said customer at said second web site using said authentication message 
generated by said first web site. 

1 1 . (original) The method of claim 10, wherein the step of authenticating said customer 
at said second web site occurs when said customer has previously visited said second web site, and 
further comprising the step of prompting said customer to log in to said second web site when said 
customer has not previously visited said second web site. 



-4- 



Application No.: 10/043,879 



Docket No.: 20846-176942 



12. (original) The method of claim 10, wherein said authentication message comprises a 
uniform resource locator (URL) with a retum address for said first web site, and further comprising 
the step of retuming said customer from said second web site to said first web site using said URL 
without further authentication by said first web site. 

13. (original) The method of claim 10, further comprising the step of generating said 
authentication message for said customer at said first web site. 

14. (original) A computer for performing the method of claim 10. 

15. (original) A computer-readable medium having software for performing the method 
of claim 10. 

16. (currently amended) A computer system for secure mutual authentication comprising 
a first web site and a second web site; 

said first web site to authenticate a customer, receive a selection from said customer 
requiring transfer to said second web site, generate an authentication message, and transfer said 
authentication message from said first web site to said second web site, said authentication message 
devoid of intelligent information of said custome r and comprising a permanent customer 
pseudonym that uniquely identifies said customer and is devoid of intelligent information of said 
customer : and 

said second web site to receive said authentication message for said customer from said first 
web site and authenticate said customer using said authentication message generated by said first 
web site. 
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